nodepdf@1.3.0 vulnerabilities

Down and dirty PDF rendering in Node.js

Direct Vulnerabilities

Known vulnerabilities in the nodepdf package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free
VulnerabilityVulnerable Version
  • C
Remote Code Execution (RCE)

nodepdf is a Down and dirty PDF rendering in Node.js

Affected versions of this package are vulnerable to Remote Code Execution (RCE) due to improper sanitization of input passed to the Pdf() function.

How to fix Remote Code Execution (RCE)?

There is no fixed version for nodepdf.

*